htwkmooc/codeocean
1
0
Fork 0
Code Issues Pull Requests Actions Packages Projects Releases Wiki Activity

allow iframe requests

Browse Source
This commit is contained in:
Niklas Kiefer
2017-04-11 12:19:41 +02:00
parent 341cd3a003
commit 5002f9bbce
1 changed files with 5 additions and 1 deletions
Download Patch File Download Diff File Expand all files Collapse all files

6
app/controllers/application_controller.rb
View File

@ -5,7 +5,7 @@ class ApplicationController < ActionController::Base
MEMBER_ACTIONS = [:destroy, :edit, :show, :update] MEMBER_ACTIONS = [:destroy, :edit, :show, :update]
after_action :verify_authorized, except: [:help, :welcome] after_action :verify_authorized, except: [:help, :welcome]
before_action :set_locale before_action :set_locale, :allow_iframe_requests
protect_from_forgery(with: :exception) protect_from_forgery(with: :exception)
rescue_from Pundit::NotAuthorizedError, with: :render_not_authorized rescue_from Pundit::NotAuthorizedError, with: :render_not_authorized
@ -29,4 +29,8 @@ class ApplicationController < ActionController::Base
def welcome def welcome
end end
def allow_iframe_requests
response.headers.delete('X-Frame-Options')
end
end end